SUMMARY

• An Information and Cyber Security Lead, with over 15yrs of extensive consulting expertise, in the areas of security architecture, engineering, risk management, policy, audit and compliance.
• An adaptable, detailed and persistent professional, who leads, develops and maintains information security programs, and employs a logical and resourceful approach towards bringing projects to a successful closure.

PROFESSIONAL EXPERIENCE

Confidential

Lead Information Security Officer / Security SME

Responsibilities:

• Performed as an information security lead and subject matter expert for a workforce agency, directly supporting the CIO and agency Director, as it relates to all information security and compliance projects and initiatives.
• Established information security policies, procedures, technical security designs, risk management plans, system security plans and incident response plans, using in debt knowledge and experience with State and Federal compliance regulatory directives, NIST guidelines and industry information security best practices.
• Responsible for the overall security, compliance, reviews, audits and mitigation of audit findings for the agency, as it relates to safeguarding Informations Systems, to include but not limited to Mainframe Tax and Unemployment Insurance application systems ( DC Online Compensation System (DOCS), District’s Unemployment Tax Accounting System (DUTAS), Wage Record Interchange System (WRIS), etc), Web Applications, Window Virtual Machines, SQL database clusters, as well as infrastructure security in concert with the DC Citywide IT Security group at the Confidential ( Confidential ).
• Led efforts on the IRS Treasury Offset Program (TOP) by first translating IRS’s publication 1075 requirements into a security design plan (SDP) and consequently implementing needed changes within the IT infrastructure that will process and store Federal Tax Information (FTI) data. The SDP, SSP and SPR were approved by the IRS. This project enabled the agency recover over $2million worth of Unemployment Insurance benefits fraud debt within 12 months after going live.
• Coordinated and led efforts on all IT Security audits of Confidential / Confidential ’s TCP/IP ( layer 1 - 7 of the OSI model) based network by DOL, KPMG, IRS, WRIS and OCSE, and worked as an integral part of the remediation process in collaborations with Confidential, concerning issues found on network operations protocols, IBM Mainframe, Cisco routing and switching methods and appliances, Checkpoint, Cisco ASA and Paulo Alto firewalls, Juniper/Junos firewall, Cisco Wireless Access Points, Windows 7 / XP, SQL Server, VMware and Active Directory.
• Coordinated and worked with Confidential in conducting Vulnerability Assessment (OS and Web Applications) scans, using diverse tools (Saint, Hailstorm, Acunetix, Nexpose, etc), and worked with developers in remediating findings.
• Collaborated with Confidential on troubleshooting and analysis of information systems and associated network segments at the datacenter.
• Implemented database security and compliance solution using Trustwave DB Protect.
• Served as a key member of an enterprise modernization team in recommending viable security architecture, capable of hadling modern threats, with emphasis on Web application protection.
• Led efforts in reviewing potential security incidents and researched root cause using diverse methodologies to include ways an intruder would exploit in a hacking process. Incident reports are filed and appropriate entities notified as documented in the incident response plan.
• Developed and administered security awareness and data handling training modules to varying population.
• Authored an access control logic which was translated by Confidential developer into a workflow using Quickbase
• Coordinated access control to highly sensitive systems and enforced acknowledgment of confidentiality.
• Served in a multi-dimensional role for the agency, to include performing as a Security Project Manager and Technical Solutions Architect.

Key Technologies/Skills: DOCS, DUTAS, BARTS, WEBS, ESSP, WRIS, Pub 1075, IBM Mainframe, Quickbase, SQL, Synology NAS, Active Directory, Project, MS Office, MS Visio, Checkpoint, WAF, Cisco (25xx-75xx series), Cisco ASA 55xx series, Juniper/Junos ( SRX series, SA series, IDP, ISG, SSG), McAfee EPO, Nessus, RSA ACE server with secure ID, Acunetix, Metasploit, TCP/IP Layer 1 - 7 of OSI, VLSM Subnetting, HP OpenView, GFI LanGuard, Nagios, Cisco Works, Ethereal, Wireshark, NMap Scanner, Tcpdump, Waterholes, Bait and Switch, Host File redirect and Cookie Theft, NIST 800 series

Confidential

Information Security Officer / Sr Security Architect

Responsibilities:

• Worked as an Information Security Consultant for the Confidential leading a team tasked with the overall security of the systems and infrastructure hosting sensitive data. This included but not limited to security designs, security network operations and engineering, policy and compliance projects, audit and remediating efforts on a TCP/IP (layer 1 - 7 of the OSI model) based network, using industry security best practices and applicable government guidelines.
• Responsible for evaluating and translating agency’s business requirements into security technology and process solutions.
• Worked in an enterprise architect capacity, designing and deploying technologies to include wireless intrusion detection and prevention at Metro Stations across the DC Metro area, host intrusion detection system (HIDS) and network IDS/IPS, internet and email content filtering, Checkpoint and Cisco ASA firewall and VPN solutions, Junos Load balancing, Junos/Junniper SSL VPN, secured routing and switching solutions.
• Led efforts on point of sale (POS) vulnerability assessment and responded to incidents requiring research and/or reverse engineering on compromised systems due to possible hacking
• Performed overall enterprise technical assessments and troubleshooting networks using diverse analysis tools and techniques
• Also worked on security compliance initiatives and corresponding documentation, to include systems architectural designs, systems security plans and incident response plans.

Key Technologies/Skills: Airmagnet, NIST 800 series, Metro POS, Checkpoint, Cisco 3825, Cisco ASA 5500, Juniper/Junos SRX series, Juniper SA 4500, McAfee EPO, Nessus, RSA, ISA Server, Secure ID, Metasploit,, TCP/IP Layer 1 - 3 of OSI, VLSM Subnetting, Cisco Works, Ethereal, Wireshark, HP OpenView, GFI LanGuard, Nagios, NMap Scanner, Tcpdump, Waterholes, Bait and Switch, Host File redirect and Cookie Theft, Project, MS Office, MS Visio

Confidential

Sr Security Architect Consultant

Responsibilities:

• CWITS is responsible for the overall security design of a co-located consolidated datacenter infrastructure hosting multiple DC agencies and supported a diverse security and network operations platforms to include Checkpoint and Cisco ASA Firewalls and VPN, Junniper/Junos Internet gateway and SSL VPN, IDS/IPS, E-mail Gateways, WEB Content filters, Data Loss/Leak Prevention (DLP), Cisco routing and switching (perimeter, Core, distribution and access components), Dell server blades, VMware and Storage Access Network. Network supported is a TCP/IP (layer 1 - 7 of the OSI model) network using RSA and LDAP for Authentication.
• Designed, deployed and maintained citywide host based intrusion detection systems (HIDS) using ISS realsecure
• The team was tasked with securing the City’s network using up to date methodologies, State and Federal regulations, and security best practices
• Systems and Network operational support included Antivirus, Antimalware, Vulnerability Assessment, penetration testing including ethical hacking methodologies, audit remediation, Incident response, performance tuning, troubleshooting and analysis.

Key Technologies/Skills: Checkpoint NG, Paulo Alto, IBM Mainframe, Cisco 3825/2500/7000, Cisco ASA 5500, Juniper/Junos SRX series, Juniper SA 2500/4500, McAfee EPO, Nessus, RSA, Secure ID, ISS RealSecure, SIteprotector, TCP/IP Layer 1 - 7 of OSI, VLSM Subnetting, Cisco Works, Ethereal, Wireshark, HP OpenView, GFI LanGuard, NMap Scanner, Tcpdump, Waterholes, Host File redirect, Cookie Theft, Project, MS Visio, Websense

Confidential

Sr Security Engineer

Responsibilities:

• Worked as the lead Security Consultant on the Electronic Clearance Project where my team was responsible for the overall security design and management of all security and network operations relating to systems connecting Confidential with the US FBI/CJIS Fingerprint Transmission Systems.
• Led technical review and audit of the data infrastructure, a TCP/IP ( all layers of the OSI model) based network powered Cisco routing and switching Core, to ensure alignment with Federal compliance regulations and security best practices, benchmarking with NIST technical, operational and managerial controls.
• Responsible for the architecture and management of multiple firewalls (Checkpoints, Juniper/Junos Netcreens & Cisco ASA) for perimeter control, internal zoning and Virtual Private Networking/Remote connectivity purposes.
• Designed and deployed ISS Realsecure network intrusion detection/prevention systems (IDS/IPS) along with Siteprotector for centralized intrusion management.
• Performed security log analysis with Symantec DeepSight
• Coordinated incident response, network and systems analysis, reverse trace of possible hacking activities, penetrations testing/ethical hacking and network troubleshooting
• Other responsibilities were leading Certification and Accreditation (C&A) efforts, establishing security documentation (SSP, SAD, CP, CM, etc), vulnerability assessments, Configuration and Change Management, Patch Management (Linux and Windows), Vendor Relations, security policy review and other advanced engineering initiatives as needed.

Key Technologies/Skills: SQL Server 03, Active Directory, MS Project/Office/Visio, Checkpoint 4.0, Cisco IOS 2500 series, Cisco ASA 55xx, Juniper (Junos) SRX, Juniper SA 2500, McAfee EPO, Linux Auditor, RSA ACE server with secure ID, Metasploit, TCP/IP Layer 1 - 7 of OSI, VLSM Subnetting, GFI LanGuard, Nagios, Cisco Works, Ethereal, Wireshark, NMap Scanner, Tcpdump, Waterholes, Syslog, Symantec Deepsight, NIST 800

Confidential

Lead Security and Network Consultant

Responsibilities:

• Worked as the lead Enterprise Security Consultant at the Confidential ( Confidential ) headquarters in Washington DC, where my team I was responsible for the agency’s overall enterprise security design and network operations/engineering.
• Responsible for coordinating security assessments, testing and evaluation of the agencies’ data infrastructure, to ensure compliance with Federal regulations and industry best practices.
• Deployed multiple Nokia Checkpoint firewall appliances (IP 440-650) in HA mode at the Internet access point. Network was TCP/IP ( all layers of the OSI model) based utilizing Cisco routing and switching backbone.
• Designed and implemented Intrusion Detection solution (IDS) with a combination of ISS Realsecure Host based Sensors and Enterasys Dragon Network IDS.
• Designed and implemented a VPN solution for the Confidential using Cisco Secure IP concentrator in conjunction with RSA ACE servers for strong 2-factor authentication (secure ID) to meet the demands of an increased number of telecommuters (government and contractors).
• Designed, deployed and maintained HIDS and NIDS at the IAP.
• Designed a security incident management solutions using verity of tools in an effort to collect and correlate security logs from multiple devices (Syslogs, Firewalls, IDS and HIDS).
• Deployed Cisco ASA and Juniper/Junos Firewalls, Cisco and Juno/Juniper VPN, and Checkpoint SPLAT for LAB testings and simulation.
• Initiated a project in researching Data Leak/Loss Prevention (DLP) solution for the Agency.
• Other tasks at the agency included but were not limited to conducting vulnerability assessments on the network as well as IT systems, incident response to malicious activities, ethical hacking in conjunction with penetration testing, enterprise security policy review, disaster recovery planning, troubleshooting network and system issues.

Key Technologies/Skills: Viruswall, LDAP, Active Directory, MS Project/Visio, Checkpoint 4 on Nokia voyager appliance, Cisco IOS 2550, Cisco ASA 55xx series, Juniper/Junos SRX, SA series, IDP, McAfee EPO, Nessus, RSA ACE server with secure ID, Metasploit, TCP/IP Layer 1 - 3 of OSI, VLSM Subnetting, HP OpenView, GFI LanGuard, Nagios, Cisco Works, Ethereal, Nagos,Wireshark, NMap Scanner, Tcpdump, Waterholes, Bait and Switch, Host File redirect and Cookie Theft, NIST 800 series.

Confidential

Sr Network Security Engineer

Responsibilities:

• Worked as the lead Engineer for a managed security services provider in Northern Virginia where my team was responsible for all network operations and engineering ( Routing and Switching), firewall and IDS/IPS security design, implementation and support for customers (government/private), as well as company’s own TCP/IP (OSI layer 1 - 7) based enterprise infrastructure.
• Performed installation and configuration of ISS and Snort Intrusion detection systems at various customer sites. Designed and implemented Checkpoint security/management suit (VPN, FW, IDS, floodgate, etc) for customers. VPN implementation involved both secure remote configurations for access via Checkpoint gateways into internal networks and gateway-to-gateway encryption, using strict encryption algorithms following industry best practices.
• Led a team of Security Engineers in a military project (Defense Acquisition Pilot Programs -DAPP) in Pennsylvania in a successful effort of migrating 300 remote firewalls, geographically situated at several military offices, into a centrally managed Provder-1 environment
• Traveled on an as needed basis to customer sites to perform security/vulnerability assessments on their networks, provided documentation and offered recommendations appropriately. Security assessments involved scanning systems to identify vulnerabilities.
• Performed penetration testing, vulnerability assessment and ethical hacking using various tools and methodologies
• Other responsibilities at customer sites involved installation and configuration of Cisco routers and switches (1900-7000), Cisco PIX (515/520), Cisco ASA, Cisco VPN, Junos/Juniper VPN (SSL) and other Firewall and VPN network appliances from Symantec and Fortigate
• Led network analysis and systems troubleshooting efforts using various tools and methodologies

Key Technologies/Skills: MS Office, Checkpoint 4 SPLAT, Checkpoint MDS, Cisco (25xx-75xx series), Cisco ASA, Juniper/Junos ISG/IDP/SSG Nessus, RSA ACE server with secure ID, Hailstorm, HP OpenView, GFI LanGuard, Nagios, Cisco Works, Ethereal, Wireshark, NMap Scanner, Tcpdump, Waterholes, Bait and Switch

Confidential

Network Engineer

Responsibilities:

• Worked as a network operations specialist with an organization that provided a hybrid Cisco IOS and Juniper Junos TCP/IP (layer 1 - 7 of the OSI model) network backbone responsible for routing and switching data between retail (hotels and restaurants) credit card systems and Banks (American Express, Discover, Visa and Master)
• Involved with systems configuration and security of NT/Unix based credit-card systems
• Supervised the network center while offering remote support to customers and troubleshooting and resolving diverse network connectivity and system issues
• Accessed customer’s sites remotely for troubleshooting purposes
• Support provided involved performance tuning, network monitoring, network management, security patch updates on the operating systems (NT, DOS, Novel and UNIX), purging and rebuilding credit card transaction databases, routing credit card transactions running off company cisco routers (OSPF) while monitoring and analyzing via HP OpenView, Ethereal, Zenose Core, Network Miner, amongst others.
• Part of the team involved with managing and troubleshooting circuits for customers who connect via satellite

Key Technologies/Skills: Micros, Fidelio, Cisco IOS 25xx 35xx, Juniper ISGOSPF, JSDU network analyzer, Zenmapp Scanner, TCP/IP, Cisco Networking

Confidential

Systems Administrator

Responsibilities:

• Performed as a systems administrator within Windows NT /Novell heterogeneous
• Assisted with administration of user account’s, file and print sharing processes, disaster recovery, remote connectivity, Systems security, Server Hardware installation and maintenance, OS support (Backups/Restores), Systems analysis, Performance tuning, and License Management
• Involved with investigating and resolving operational problems in conjunction with other engineering and technical personnel
• Involved with capacity planning and hardware sizing
• Assisted in troubleshooting multiple platform errors to using various analysis tools.
• Supported integrated computer systems including data processing. Ensured that installation projects met user requirements and time schedule. Maintained configuration documentation.

Key Technologies/Skills: Windows NT 4, Novell, LDAP, CASPA, Zenoss Core, JDSU analyzer, Print Server,